[WEB SECURITY] EV SSL certificates

Michael Sutton msutton at spidynamics.com
Fri Dec 29 16:21:29 EST 2006


> What are people's opinions on EV SSL certificates?  Will they be
> widely adopted?  Will they make a dent in phishing attacks?
> 
> I'm going to guess that they will be widely adopted by the large
> e-commerce and financial sites, but they won't make a significant
> difference in losses due to phishing.  End users just aren't going to
> look at the URL bar enough to understand what is going on.

Certificate Authorities and criminals will benefit from EV SSL
certificates. End users on the other hand will only be left with a false
sense of security.

Blogged:
Will EV SSL Certificates Work?
http://portal.spidynamics.com/blogs/msutton/archive/2006/12/29/Will-EV-S
SL-Certificates-Work_3F00_.aspx

Michael Sutton
Security Evangelist
SPI Dynamics
http://portal.spidynamics.com/blogs/msutton/


----------------------------------------------------------------------------
The Web Security Mailing List: 
http://www.webappsec.org/lists/websecurity/

The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/archive/
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]



More information about the websecurity mailing list